Lucene search
MitreCVELIST:CVE-2004-1270HistoryDec 22, 2004 - 5:00 a.m.
CVE-2004-1270
2004-12-2205:00:00
mitre
www.cve.org
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user input that triggers an error message.
References
tigger.uic.edu/~jlongs2/holes/cups2.txt
www.gentoo.org/security/en/glsa/glsa-200412-25.xml
www.mandriva.com/security/advisories?name=MDKSA-2005:008
www.redhat.com/support/errata/RHSA-2005-013.html
www.redhat.com/support/errata/RHSA-2005-053.html
exchange.xforce.ibmcloud.com/vulnerabilities/18609
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11507
usn.ubuntu.com/50-1/
Related
cve
cve
CVE-2004-1270
2005-01-10 05:00:00
ubuntucve
ubuntucve
CVE-2004-1270
2005-01-10 00:00:00
nvd
nvd
CVE-2004-1270
2005-01-10 05:00:00
debiancve
debiancve
CVE-2004-1270
2005-01-10 05:00:00
openvas
openvas
FreeBSD Ports: cups-lpr, fr-cups-lpr
2008-09-04 00:00:00
FreeBSD Ports: cups-lpr, fr-cups-lpr
2008-09-04 00:00:00
CUPS < 1.1.23 Multiple Vulnerabilities
2005-11-03 00:00:00
nessus
nessus
FreeBSD : cups-lpr -- lppasswd multiple vulnerabilities (7850a238-680a-11d9-a9e7-0001020eed82)
2005-07-13 00:00:00
Mandrake Linux Security Advisory : cups (MDKSA-2005:008)
2005-01-18 00:00:00
RHEL 3 : cups (RHSA-2005:013)
2005-01-13 00:00:00
freebsd
freebsd
cups-lpr -- lppasswd multiple vulnerabilities
2004-12-11 00:00:00
ubuntu
ubuntu
CUPS vulnerabilities
2004-12-23 00:00:00
gentoo
gentoo
CUPS: Multiple vulnerabilities
2004-12-28 00:00:00
redhat
redhat
(RHSA-2005:013) cups security update
2005-01-12 00:00:00
(RHSA-2005:053) CUPS security update
2005-02-15 00:00:00